CVE-2025-1903 | Codezips Online Shopping Website 1.0 /cart_add.php id sql injection

Posted by Angelo Barbosa | Mar 3, 2025 | CVE

A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cart_add.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2025-1903. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-1903 | Codezips Online Shopping Website 1.0 /cart_add.php id sql injection

Related Posts

CVE-2024-24059 | springboot-manager 1.6 unrestricted upload

CVE-2024-21647 | Puma up to 5.6.7/6.4.1 Chunked Transfer Encoding Parser request smuggling (GHSA-c2f4-cvqm-65w2)

CVE-2024-37521 | zwwooooo zBench Plugin up to 1.4.2 on WordPress cross site scripting

CVE-2023-40287 | Supermicro X11SSM-F/X11SAE-F/X11SSE-F 1.66 cross site scripting